4133bdbd527bbb898798f79ee56aaf5ae8e990301effd12d397b226c365b4942

Analysis

max time kernel
119s
max time network
123s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
23/05/2024, 20:10

Target

2024-05-23_b416c69f8354e047122236d5441aa988_cobalt-strike_ryuk.exe
Size

796KB
MD5

b416c69f8354e047122236d5441aa988
SHA1

fff18d5db8ec63591d093d4eca6938a994f2111b
SHA256

4133bdbd527bbb898798f79ee56aaf5ae8e990301effd12d397b226c365b4942
SHA512

ebfac9c524cd84500222f4a0df7a20728046f1028b2e821a0ecc084d94a5c0bc7871d8fa92828612689d3fe29b9b08c78f2734d0ebadb219d611e88809953c06
SSDEEP

12288:qXDCAZzP/w24lhyIxn85c6S4Hb4849nIYVjIlCOU4hog96o2gZ:NANw243y65gcTVjUCs2Vo2

Score

1^/10

C:\Users\Admin\AppData\Local\Temp\2024-05-23_b416c69f8354e047122236d5441aa988_cobalt-strike_ryuk.exe
"C:\Users\Admin\AppData\Local\Temp\2024-05-23_b416c69f8354e047122236d5441aa988_cobalt-strike_ryuk.exe"
1⤵
PID:2312

memory/2312-0-0x0000000002300000-0x0000000002360000-memory.dmp

Filesize
384KB

Download
memory/2312-13-0x0000000140000000-0x00000001400CF000-memory.dmp

Filesize
828KB

Download
memory/2312-12-0x0000000002300000-0x0000000002360000-memory.dmp

Filesize
384KB

Download
memory/2312-9-0x0000000002300000-0x0000000002360000-memory.dmp

Filesize
384KB

Download
memory/2312-8-0x0000000140000000-0x00000001400CF000-memory.dmp

Filesize
828KB

Download